Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 8, 2026, 4 p.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227661 7.5 危険 TYPO3 Association - TYPO3 用の Frontend プラグインエクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2489 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
227662 6.8 警告 xomol - Xomol CMS の index.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2484 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
227663 6.8 警告 xomol - Xomol CMS の index.php におけるディレクトリトラバーサルの脆弱性 CWE-22
パス・トラバーサル 		CVE-2008-2483 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
227664 10 危険 phpraider - phpRaider の authentication/phpbb3/phpbb3.functions.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2481 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
227665 10 危険 plusphp - plusPHP Short URL Multi-User Script の plus.php における PHP リモートファイルインクルージョンの脆弱性 CWE-94
コード・インジェクション 		CVE-2008-2480 2012-12-20 18:52 2008-05-28 Show GitHub Exploit DB Packet Storm
227666 7.5 危険 vBulletin Solutions, Inc. - vBulletin Gold の faq.php における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2460 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
227667 7.5 危険 phpclassifiedsscript - PHP Classifieds Script における SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2453 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
227668 4.3 警告 TYPO3 Association - TYPO3 用の Questionaire エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2452 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
227669 7.5 危険 TYPO3 Association - TYPO3 用の Statistics エクステンションにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2008-2451 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
227670 4.3 警告 TYPO3 Association - TYPO3 用の Statistics エクステンションにおけるクロスサイトスクリプティングの脆弱性 CWE-79
クロスサイト・スクリプティング(XSS) 		CVE-2008-2450 2012-12-20 18:52 2008-05-27 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 8, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
224131 3.3 LOW
Local 		fujielectric frenic_loader Fuji Electric FRENIC Loader 3.5.0.0 and prior is vulnerable to an out-of-bounds read vulnerability, which may allow an attacker to read limited information from the device. CWE-125
Out-of-bounds Read 		CVE-2019-13512 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
224132 3.3 LOW
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain an INFORMATION EXPOSURE CWE-200. A maliciously crafted Arena file opened by an unsuspecting user may result in the … CWE-416
 Use After Free 		CVE-2019-13511 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
224133 7.8 HIGH
Local 		rockwellautomation arena_simulation_software Rockwell Automation Arena Simulation Software versions 16.00.00 and earlier contain a USE AFTER FREE CWE-416. A maliciously crafted Arena file opened by an unsuspecting user may result in the applica… CWE-416
 Use After Free 		CVE-2019-13510 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
224134 9.8 CRITICAL
Network 		givewp givewp A SQL injection vulnerability exists in the Impress GiveWP Give plugin through 2.5.0 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute arbitrary SQ… CWE-89
SQL Injection 		CVE-2019-13578 2024-11-21 13:25 2019-08-16 Show GitHub Exploit DB Packet Storm
224135 9.8 CRITICAL
Network 		adenion blog2social The Adenion Blog2Social plugin through 5.5.0 for WordPress allows SQL Injection. CWE-89
SQL Injection 		CVE-2019-13572 2024-11-21 13:25 2019-08-2 Show GitHub Exploit DB Packet Storm
224136 8.8 HIGH
Network 		cimg cimg CImg through 2.6.7 has a heap-based buffer overflow in _load_bmp in CImg.h because of erroneous memory allocation for a malformed BMP image. CWE-787
 Out-of-bounds Write 		CVE-2019-13568 2024-11-21 13:25 2019-08-1 Show GitHub Exploit DB Packet Storm
224137 9.1 CRITICAL
Network 		wpfastestcache wp_fastest_cache The WP Fastest Cache plugin through 0.8.9.5 for WordPress allows wpFastestCache.php and inc/cache.php Directory Traversal. CWE-22
Path Traversal 		CVE-2019-13635 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
224138 6.5 MEDIUM
Network 		imgix imgix Imgix through 2019-06-19 allows remote attackers to cause a denial of service (resource consumption) by manipulating a small JPEG file to specify dimensions of 64250x64250 pixels, which is mishandled… CWE-400
 Uncontrolled Resource Consumption 		CVE-2019-13655 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
224139 9.8 CRITICAL
Network 		vsourz advanced_cf7_db A SQL injection vulnerability exists in the Vsourz Digital Advanced CF7 DB plugin through 1.6.1 for WordPress. Successful exploitation of this vulnerability would allow a remote attacker to execute a… CWE-89
SQL Injection 		CVE-2019-13571 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm
224140 7.4 HIGH
Network 		oneidentity cloud_access_manager One Identity Cloud Access Manager 8.1.3 does not use HTTP Strict Transport Security (HSTS), which may allow man-in-the-middle (MITM) attacks. This issue is fixed in version 8.1.4. CWE-319
Cleartext Transmission of Sensitive Information 		CVE-2019-13498 2024-11-21 13:25 2019-07-30 Show GitHub Exploit DB Packet Storm